Operate and maintain threat intelligence platforms, monitor and analyze global threats, collect and enrich IOCs, automate ingestion and distribution, integrate intelligence into SIEM/SOAR/EDR, support incident response and detection engineering, perform malware and campaign analysis, and produce actionable intelligence reports and dashboards for stakeholders.
What's the role?
We are looking for a highly motivated and technically skilled Threat Intelligence Engineer to join our Cyber Security team. The ideal candidate will combine strong analytical capabilities with hands-on engineering and automation skills to proactively identify, analyze, operationalize, and communicate cyber threats relevant to the organization.
This role focuses on transforming threat intelligence into actionable security outcomes by leveraging Threat Intelligence Platforms (TIPs), automation, adversary tracking, and close collaboration with SOC, Incident Response, Detection Engineering, and Security Operations teams.
The successful candidate will help mature the company's Cyber Threat Intelligence (CTI) capabilities, improve visibility into emerging threats, and automate intelligence collection, enrichment, and distribution workflows.
Key Responsibilities
Who are you?
What Do We Offer?
Change is HERE. Apply Now!
As part of HERE Technologies employment process, candidates will be required to successfully complete a pre-employment screening process. This offer and any related claims are subject to the successful completion of a pre-employment screening. This will involve employment, education, and criminal verification if applicable.
#LI-AY2 #LI-HYBRID
Who are we?
HERE Technologies is a location data and technology platform company. We empower our customers to achieve better outcomes - from helping a city manage its infrastructure or a business optimize its assets to guiding drivers to their destination safely.
At HERE we take it upon ourselves to be the change we wish to see. We create solutions that fuel innovation, provide opportunity and foster inclusion to improve people's lives. If you are inspired by an open world and driven to create positive change, join us. Learn more about us on our YouTube Channel.
We are looking for a highly motivated and technically skilled Threat Intelligence Engineer to join our Cyber Security team. The ideal candidate will combine strong analytical capabilities with hands-on engineering and automation skills to proactively identify, analyze, operationalize, and communicate cyber threats relevant to the organization.
This role focuses on transforming threat intelligence into actionable security outcomes by leveraging Threat Intelligence Platforms (TIPs), automation, adversary tracking, and close collaboration with SOC, Incident Response, Detection Engineering, and Security Operations teams.
The successful candidate will help mature the company's Cyber Threat Intelligence (CTI) capabilities, improve visibility into emerging threats, and automate intelligence collection, enrichment, and distribution workflows.
Key Responsibilities
- Monitor and analyze the global threat landscape to identify threats relevant to the company, industry, assets, and business operations.
- Track emerging threat actors, malware campaigns, vulnerabilities, ransomware groups, phishing activity, and attacker TTPs.
- Collect, enrich, correlate, and operationalize Indicators of Compromise (IOCs) and threat intelligence from internal and external sources.
- Operate and maintain Threat Intelligence Platforms, including MISP and related integrations.
- Develop automated workflows for threat ingestion, enrichment, deduplication, scoring, and distribution.
- Integrate threat intelligence into SIEM, SOAR, EDR/XDR, ticketing systems, and detection pipelines through APIs and automation.
- Produce tactical, operational, and strategic intelligence reports for technical and non-technical stakeholders.
- Support Incident Response, Threat Hunting, Detection Engineering, and Purple Team activities with actionable intelligence.
- Conduct malware, infrastructure, and campaign analysis to identify attacker patterns and risks.
- Evaluate new intelligence sources, tools, and technologies to continuously improve CTI capabilities.
- Build dashboards, metrics, and reporting capabilities to measure intelligence effectiveness and threat trends.
Who are you?
- 3+ years of experience in Cyber Threat Intelligence, SOC, Detection Engineering, Incident Response, or similar cybersecurity roles.
- Hands-on experience with Threat Intelligence Platforms such as MISP, OpenCTI, ThreatConnect, or equivalent.
- Strong understanding of Cyber Threat Intelligence concepts, IOC lifecycle management, and intelligence-driven defense.
- Experience analyzing threat actors, malware, phishing campaigns, vulnerabilities, and adversary TTPs.
- Practical knowledge of MITRE ATT&CK framework.
- Experience with SIEM technologies such as Splunk, Microsoft Sentinel, Elastic, QRadar, or similar.
- Basic to intermediate scripting and automation skills using Python, Bash, or similar languages.
- Familiarity with STIX/TAXII and intelligence-sharing methodologies.
- Understanding of networking, operating systems, cloud environments, and modern attack techniques.
- Ability to communicate technical findings clearly to both technical and business audiences.
- Strong analytical mindset with attention to detail and prioritization skills.
What Do We Offer?
- Work on the development of large-scale services, serving and storing petabytes of data.
- Work with cutting-edge, modern technologies.
- A great work-life balance.
- Flexible working hours.
- Competitive salary plus bonus.
- Fantastic & talented people from 60+ countries worldwide.
Change is HERE. Apply Now!
As part of HERE Technologies employment process, candidates will be required to successfully complete a pre-employment screening process. This offer and any related claims are subject to the successful completion of a pre-employment screening. This will involve employment, education, and criminal verification if applicable.
#LI-AY2 #LI-HYBRID
Who are we?
HERE Technologies is a location data and technology platform company. We empower our customers to achieve better outcomes - from helping a city manage its infrastructure or a business optimize its assets to guiding drivers to their destination safely.
At HERE we take it upon ourselves to be the change we wish to see. We create solutions that fuel innovation, provide opportunity and foster inclusion to improve people's lives. If you are inspired by an open world and driven to create positive change, join us. Learn more about us on our YouTube Channel.
What you need to know about the San Francisco Tech Scene
San Francisco and the surrounding Bay Area attracts more startup funding than any other region in the world. Home to Stanford University and UC Berkeley, leading VC firms and several of the world’s most valuable companies, the Bay Area is the place to go for anyone looking to make it big in the tech industry. That said, San Francisco has a lot to offer beyond technology thanks to a thriving art and music scene, excellent food and a short drive to several of the country’s most beautiful recreational areas.
Key Facts About San Francisco Tech
- Number of Tech Workers: 365,500; 13.9% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Google, Apple, Salesforce, Meta
- Key Industries: Artificial intelligence, cloud computing, fintech, consumer technology, software
- Funding Landscape: $50.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Sequoia Capital, Andreessen Horowitz, Bessemer Venture Partners, Greylock Partners, Khosla Ventures, Kleiner Perkins
- Research Centers and Universities: Stanford University; University of California, Berkeley; University of San Francisco; Santa Clara University; Ames Research Center; Center for AI Safety; California Institute for Regenerative Medicine
